Sign-up

ID

VAR-202406-1502


CVE

CVE-2024-3036


DESCRIPTION

Improper Input Validation vulnerability in ABB 800xA Base. An attacker who successfully exploited this vulnerability could cause services to crash by sending specifically crafted messages. This issue affects 800xA Base: from 6.0.0 through 6.1.1-2.

Trust: 1.0

sources: NVD: CVE-2024-3036

AFFECTED PRODUCTS

vendor:abbmodel:800xa base systemscope:gteversion:6.0

Trust: 1.0

vendor:abbmodel:800xa base systemscope:gteversion:6.1

Trust: 1.0

vendor:abbmodel:800xa base systemscope:lteversion:6.1.1-2

Trust: 1.0

vendor:abbmodel:800xa base systemscope:lteversion:6.0.3-9

Trust: 1.0

sources: NVD: CVE-2024-3036

CVSS

SEVERITY

CVSSV2

CVSSV3

cybersecurity@ch.abb.com: CVE-2024-3036
value: MEDIUM

Trust: 1.0

cybersecurity@ch.abb.com: CVE-2024-3036
baseSeverity: MEDIUM
baseScore: 5.7
vectorString: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector: ADJACENT
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 2.1
impactScore: 3.6
version: 3.1

Trust: 1.0

sources: NVD: CVE-2024-3036

PROBLEMTYPE DATA

problemtype:CWE-1284

Trust: 1.0

sources: NVD: CVE-2024-3036

EXTERNAL IDS

db:NVDid:CVE-2024-3036

Trust: 1.0

sources: NVD: CVE-2024-3036

REFERENCES

url:https://search.abb.com/library/download.aspx?documentid=7paa013309&languagecode=en&documentpartid=&action=launch

Trust: 1.0

sources: NVD: CVE-2024-3036

SOURCES

db:NVDid:CVE-2024-3036

LAST UPDATE DATE

2025-12-19T22:28:20.404000+00:00


SOURCES UPDATE DATE

db:NVDid:CVE-2024-3036date:2025-12-19T16:06:32.930

SOURCES RELEASE DATE

db:NVDid:CVE-2024-3036date:2024-06-21T11:15:12.553